Issue 3 – Page 11

Discussion (2) ¬

Hello, very recently you updated your website to prevent loading it in an iframe.

The error message is Refused to display ‘http://doppelgangercomic.net/’ in a frame because it set ‘X-Frame-Options’ to ‘SAMEORIGIN’.

I imagine this was part of some default security update but its been posing a problem for me as I wrote a daily comic app that allows me to scroll through my daily list of webcomics I enjoy. Is there any chance you could disable the sameorigin restriction?

Additionally I could try and wrap my comic view up so you can see how it works and hopefully see its completely benign.

It’s good to know that you like the comic – what app are you using to view it? We have had no reported issues with most RSS-based apps.

Unfortunately we won’t be able to disable the current x-frame settings since setting them to SAMEORIGIN allows for potential clickjacking attacks for ourselves and our readers. Obviously security comes first – I would suggest switching the app that you are using.